2 matches found
CVE-2018-13449
SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statutbuy parameter...
CVE-2018-13449
CVE-2018-13449 is a Dolibarr ERP/CRM 7.0.3 vulnerability in the file product/card.php: a SQL injection via the statut_buy parameter allows remote attackers to execute arbitrary SQL commands. The entry is supported by multiple sources (NVD and OSS entries) indicating a high-severity, network-expos...